EPSS
Percentile
86.9%
Alexander Izmailov discovered that didiwiki, a wiki implementation, failed to correctly validate user-supplied input, thus allowing a malicious user to access any part of the filesystem.
www.debian.org/lts/security/2016/dla-424